26 Jul
Principal Network Engineer / Architect (F5) Contract to Hire
California, Concord , 94518 Concord USA

Vacancy expired!

Position: Principal Network Security Architect – Contract to Hire

“US Citizens and all other parties authorized to work in the US are encouraged to apply” “We are unable to sponsor”

Company Overview: World Wide Technology (WWT) is a global technology integrator and supply chain solutions provider. Through our culture of innovation, we inspire, build and deliver business results, from idea to outcome. Based in St. Louis, WWT works closely with industry leaders such as Cisco, HPE, Dell EMC, NetApp, VMware, Intel, AWS, Microsoft, and F5, focusing on three market segments: Fortune 500 companies, service providers and the public sector. WWT is a $12 billion dollar privately held organization that employs more than 6,000 people and operates in more than 2.5+ million square feet of state-of-the-art warehousing, distribution and integration space strategically located throughout the world. WWT is proud to announce that it has been named on the FORTUNE "100 Best Places to Work For®" list for the ninth consecutive year and was awarded for multiple categories on Glassdoor’s 2019 Employees' Choice Awards, honoring the Best Places to Work. World Wide Technology Holding Co, LLC. (WWT) has an opportunity available for a Principal Network Security Engineer located in Concord, Sacramento, Auburn, Oakland, CA (Remote during Covid).

Job Title: Principal Network Security Engineer

Locations: Concord, Sacramento, Auburn, Oakland, CA (Remote during Covid).

Duration: 3-6+ Months Contract to Hire

Top Required Skills:
  • F5 experience is most important. Ideally someone who has 5-10 years of F5 experience. PAN and/or Cisco ASA Firewall experience is secondary top skill. Candidates must be very high level - design/architecture and hands on implementation experience.
  • AWS
    • Experience designing architecture for firewalls in cloud, load balancers in cloud, etc as well as hands on implementation.
Position Summary: The Cybersecurity IT Solutions Engineer (Network Security Engineer), Principal is a highly organized, thorough, security-minded problem solver focused on the protection of “Client’s” information system assets against compromise and cyber-attacks. The successful candidate is responsible for planning, implementing, deploying, and maintenance of security solutions to ensure the stability and security of “Client” infrastructure for both on premise data centers and cloud deployments. They will have extensive knowledge and broad functional experience with Firewalls, AWS, ADC, IDS/IPS across a wide range of complex architectures, platforms and mediums. This position will help in the secure deployment of network systems and help in the administration of same in a mission-critical, 24/7 environment. The successful candidate is expected to have strong technical and soft skills, must be a proven self-starter with the ability to problem-solve, communicate, participate in diverse project teams from a technical perspective, interface effectively with our internal Cybersecurity teams and LOB customers, vendor partners, and colleagues. They must also document all work for metrics and billing reporting using a designated change management or request system. They Expert Specialist also participate in audits from outside vendors and government regulators (NERC, WECC, etc.) Minimum Qualifications:
  • 10 years of IT engineering design and/or technical implementation, network, or IT operations experience
  • BA or BS degree in Computer Science, Engineering, Business or related discipline or equivalent experience
  • Experience with implementing and configuring Palo Alto next generation firewalls, F5 ADC
  • Experience with configuring Palo Alto Global Protect VPN solution
  • Experience with creating, running and maintaining cloud (AWS, Google Cloud, and Azure) network and security stack
  • Experience with Wireshark, ANUE/IXIA
Desired:
  • 10+ years of strong network security experience
  • Experience with developing, testing and maintaining REST based services and APIs
  • CISSP or other industry standard network security certification
  • Experience with encryption protocols
  • Experience with firewall rule automation tools such as Tufin
  • Experience with monitoring or syslog collection/analysis tools
  • Experience in the Utility Industry and meeting audit requirements for NERC and WECC
  • Experience with Cisco VSG or VMWare ESX firewalls
  • Experience with Cloud-based solutions
  • Experience with IDS/IPS
  • Experience with Application Delivery Controllers (preferably F5)
  • Experience or knowledge of DNS or DHCP
  • Experience with web, middleware, or database servers
  • Experience with Cyclades or other serial console terminal servers
Knowledge, Skills, and Abilities:
  • Demonstrated team player with strong and effective customer care skills
  • Experience with Palo Alto Firewalls in highly available and hybrid cloud environments
  • Experience with F5 Big-IP, Access Policy Manager (APM), Application Security Module (ASM), and Local Traffic Manager (LTM) including tmsh, writing/reading/modifying configurations, route domains, and vCMP on Viprion
  • Understanding of network security concepts, including segmentation and defense-in-depth strategies
  • Experience with automation using scripting languages (Python, Perl, Powershell, or similar)
  • Ability to create VLANs, routes and configure network interfaces on switches, routers, and firewalls to facilitate the building of DMZs and create network segmentation
  • Ability to troubleshoot, diagnose, and repair firewall issues
  • Ability to troubleshoot and pinpoint network issues outside of firewalls
  • Understanding of network concepts from layer 2 through 7 including NAT/PAT and application identification (Palo Alto AppID)
  • Experience patching and maintaining firewalls in highly available network environments with minimal down time
  • Ability to perform work while maintaining integrity and stability of network
  • Ability to work with Architects, Solutions Engineers, and Project Managers to meet aggressive project deadlines.
  • Familiar with network monitoring tools such as NetMRI, Netflow, and provide metrics in this area
  • Available for 24x7 on call rotation (not likely to apply to this role but could be a possibility if needed)
Job Responsibilities
  • Install, configure, and maintain network security hardware, software, devices and appliances in support of “Client” on premise data centers and cloud deployments.
  • Prepare network or infrastructure Visio topology diagrams, write Standard Operating Procedures and maintenance plans, and provide status reports as required.
  • Participate in data calls and other operational and maintenance tasks.
  • Assist with technical issues, project management, design, analysis, and implementation of network security solutions as needed.
  • Develop and execute mitigation plans for technical issues.
  • Prepare periodic maintenance plans and comply with change management procedures.
  • Maintain detailed knowledge of company network and technology standards.
  • Work closely with other IT groups to ensure systems are maintained in an efficient manner, and communicate all issues, changes, outages, and maintenance in accordance with processes, procedures, and policies.
  • Responsible for technical support and administration of critical infrastructure network components (e.g., firewalls, wireless controllers, VPN, etc)
Additional Information:Project a AWS, authentication policies through F5’s… Firewall lifecycle projects. Someone who understands core network concepts and how policies apply to concepts. Equal Opportunity Employer Minorities/Women/Veterans/Disabled.

Vacancy expired!


Related jobs

Report job